penetration testing::
Penetration testing is the security-oriented probing of a computer system or network to seek out vulnerabilities that an attacker could exploit. The testing process involves an exploration of the all security features of the system in question, followed by an attempt to breech security and penetrate the system. The tester, sometimes known as an ethical hacker, generally uses the same methods and tools as a real attacker. Afterwards, the penetration testers report on the vulnerabilities and suggest steps that should be taken to make the system more secure.
In his article "Knockin' At Your Backdoor," security expert Thomas Rude lists some of the system components that an ethical hacker might explore: areas that could be compromised in the demilitarized zone (DMZ); the possibility of getting into the intranet; the PBX (the enterprise's internal telephone system); and the database. According to Rude, this is far from an exhaustive list, however, because the main criterion for testing is value: if an element of your system is worthy of safe-keeping, its security should be tested regularly.
By:-Sunil Tadwalkar(PMP)
1 comment:
Thanks a lot for sharing information about the Penetration Testing,In my opinion it is one of the interesting field in the field of computer security.
By the way check out the professional training and Certification for Pen-Testers from EC-Council here
http://www.eccouncil.org/certification/licensed_penetration_tester.aspx
Post a Comment